ramnit | 3181e0fd703e3f5eadc561617730dbe9d2c898b36f7b26a49b598203389bbc04 | Triage

Submit
Reports

Overview

overview

Static

static

3

bfc389f1a3...18.exe

windows7-x64

bfc389f1a3...18.exe

windows10-2004-x64

Sharing

General

Target

bfc389f1a32e821b22e90732e26bf303_JaffaCakes118
Size

97KB
Sample

240825-awcyasyclb
MD5

bfc389f1a32e821b22e90732e26bf303
SHA1

810b4c7f491474c744565a20fa2c94ea8cc21aa7
SHA256

3181e0fd703e3f5eadc561617730dbe9d2c898b36f7b26a49b598203389bbc04
SHA512

af54562b4d850b3324b5a4eba1e25f45ee9e3b405166ca76db0f6e8e8dcba9da4038e5a0a523052e8387fe4b06856c71688ecc1fad743e7f5b5a9e1c31f24463
SSDEEP

1536:OzZZpp48Zd0lo+4EMMyO3OexOSEowTwBjzvcmJoxDWqfqNII2Ca2lJIZ:AZSlI/HUOjSiToj7CEqfqg2l+

Score

10^/10

ramnit banker discovery spyware stealer trojan upx worm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bfc389f1a32e821b22e90732e26bf303_JaffaCakes118.exe

Resource

win7-20240708-en

ramnit banker spyware stealer trojan upx worm

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

bfc389f1a32e821b22e90732e26bf303_JaffaCakes118.exe

Resource

win10v2004-20240802-en

ramnit banker discovery spyware stealer trojan upx worm

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  bfc389f1a32e821b22e90732e26bf303_JaffaCakes118
- Size
  
  97KB
- MD5
  
  bfc389f1a32e821b22e90732e26bf303
- SHA1
  
  810b4c7f491474c744565a20fa2c94ea8cc21aa7
- SHA256
  
  3181e0fd703e3f5eadc561617730dbe9d2c898b36f7b26a49b598203389bbc04
- SHA512
  
  af54562b4d850b3324b5a4eba1e25f45ee9e3b405166ca76db0f6e8e8dcba9da4038e5a0a523052e8387fe4b06856c71688ecc1fad743e7f5b5a9e1c31f24463
- SSDEEP
  
  1536:OzZZpp48Zd0lo+4EMMyO3OexOSEowTwBjzvcmJoxDWqfqNII2Ca2lJIZ:AZSlI/HUOjSiToj7CEqfqg2l+
Score

10^/10

ramnit banker spyware stealer trojan upx worm discovery
- Ramnit
  Ramnit is a versatile family that holds viruses, worms, and Trojans.
  trojan spyware stealer worm banker ramnit
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ramnitbankerspywarestealertrojanupxworm

behavioral2

ramnitbankerdiscoveryspywarestealertrojanupxworm

© 2018-2024

Terms | Privacy